Missing Permission Check for Adding Time Spent on an Issue in GitLab

Missing Permission Check for Adding Time Spent on an Issue in GitLab

CVE-2020-13319 · MEDIUM Severity

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

An issue has been discovered in GitLab affecting versions prior to 13.1.2, 13.0.8 and 12.10.13. Missing permission check for adding time spent on an issue.

Learn more about our Web Application Penetration Testing UK.